SSL ÀÚµ¿°»½Å ¿À·ù ¹®ÀÇ

   Á¶È¸ 193   Ãßõ 0    

https://devitamin.tistory.com/entry/%EC%8B%9C%EB%86%80%EB%A1%9C%EC%A7%80-SSL-%EC%9D%B8%EC%A6%9D%EC%84%9C-%EC%9E%90%EB%8F%99-%EA%B0%B1%EC%8B%A0%ED%95%98%EA%B8%B0-2-acmesh

해당 사이트를 참고해서 SSL 자동갱신을 사용중이었습니다

그런데 letsencrypt에서 갱신을 하라는 메일이와서 확인해보니 갱신이 안되는 상태였고

작업스케줄러 등록해둔거 실행시켜도 갱신이 안되던 상태였씁니다

실행내역 메일로 받기 해보니

ssl CA가 zerossl 로 변경되었다는 내용이여서 

acme.sh --set-default-ca --server letsencrypt 를 추가해서 ssh 상에서 작동 하는거를 확인하고 

작업스케줄러 등록해둔거를 다시 실행했는데 오류가 납니다

같은 내용인데 ssh는 되고 작업스케줄러는 안되서 뭐가 문제인지 모르겠네요

작업스케줄러에서 안되는 이유가 무엇일까요?

작업스케줄러 사용자는 root 입니다


작업: ssl

시작 시간: Thu, 13 Feb 2025 14:04:01 +0900

중지 시간: Thu, 13 Feb 2025 14:04:06 +0900

현재 상태: 0 (정상)

표준 출력/오류:

[Thu Feb 13 14:04:02 KST 2025] Changed default CA to: https://acme-v02.api.letsencrypt.org/directory
[Thu Feb 13 14:04:02 KST 2025] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Thu Feb 13 14:04:02 KST 2025] Multi domain='DNS:YOURDOMAIN.COM ,DNS:*.YOURDOMAIN.COM'
[Thu Feb 13 14:04:05 KST 2025] Getting webroot for domain='YOURDOMAIN.COM'
[Thu Feb 13 14:04:05 KST 2025] Getting webroot for domain='*.YOURDOMAIN.COM'
[Thu Feb 13 14:04:05 KST 2025] Cannot find DNS API hook for: dns_cf
[Thu Feb 13 14:04:05 KST 2025] You need to add the TXT record manually.
[Thu Feb 13 14:04:05 KST 2025] Add the following TXT record:
[Thu Feb 13 14:04:05 KST 2025] Domain: '_acme-challenge.YOURDOMAIN.COM'
[Thu Feb 13 14:04:05 KST 2025] TXT value: 'HbZjryFjJe8d5I-6uxq--2qJdycFiCH1sT1FiekeZSM'
[Thu Feb 13 14:04:05 KST 2025] Please make sure to prepend '_acme-challenge.' to your domain
[Thu Feb 13 14:04:05 KST 2025] so that the resulting subdomain is: _acme-challenge.YOURDOMAIN.COM
[Thu Feb 13 14:04:06 KST 2025] Cannot find DNS API hook for: dns_cf
[Thu Feb 13 14:04:06 KST 2025] You need to add the TXT record manually.
[Thu Feb 13 14:04:06 KST 2025] Add the following TXT record:
[Thu Feb 13 14:04:06 KST 2025] Domain: '_acme-challenge.YOURDOMAIN.COM'
[Thu Feb 13 14:04:06 KST 2025] TXT value: 'ajctq-kef84GxUAzgeRtREgsc8Q24_cghTnV-y1QL38'
[Thu Feb 13 14:04:06 KST 2025] Please make sure to prepend '_acme-challenge.' to your domain
[Thu Feb 13 14:04:06 KST 2025] so that the resulting subdomain is: _acme-challenge.YOURDOMAIN.COM
[Thu Feb 13 14:04:06 KST 2025] Please add the TXT records to the domains, and re-run with --renew.
[Thu Feb 13 14:04:06 KST 2025] Please check log file for more details: /root/.acme.sh/acme.sh.log
[nginx] reloaded.
ªÀº±Û Àϼö·Ï ½ÅÁßÇÏ°Ô.
³×ÀÓ¼­¹ö¿¡ µµ¸ÞÀÎÀÇ txt Äڵ带 µî·ÏÇ϶ó°í Çϴ±º¿ä.
Domain: '_acme-challenge.YOURDOMAIN.COM'
[Thu Feb 13 14:04:05 KST 2025] TXT value: 'HbZjryFjJe8d5I-6uxq--2qJdycFiCH1sT1FiekeZSM'

³×ÀÓ¼­¹ö¿¡ ¼³Á¤
_acme-challenge.YOURDOMAIN.COM  TXT  "HbZjryFjJe8d5I-6uxq--2qJdycFiCH1sT1FiekeZSM"
_acme-challenge.YOURDOMAIN.COM  TXT  "ajctq-kef84GxUAzgeRtREgsc8Q24_cghTnV-y1QL38"

dns Àû¿ëÈÄ
acme.sh --renew -d YOURDOMAIN.COM -d '*.YOURDOMAIN.COM'
Àç½ÇÇà
     
ssh ½ÇÇà½Ã¿¡´Â txt °ªÀ» ÀÚµ¿À¸·Î ÀÔ·ÂÇؼ­ ó¸® µË´Ï´Ù

ÀÛ¾÷½ºÄÉÁÙ·¯ ½ÇÇà½Ã¿¡´Â txt °ªÀ» µî·ÏÇ϶ó°í ¶ß´Âµ¥ ½ÇÇà½Ã¸¶´Ù txt °ªÀÌ ´Þ¶óÁö±â ¶§¹®¿¡ µî·ÏÀ» ÇÒ¼ö ¾ø´Â »óȲÀÔ´Ï´Ù
     
ssh ¿¡¼­ ½ÇÇà½Ã txt ºÎºÐÀÔ´Ï´Ù

[Thu Feb 13 01:13:48 PM KST 2025]  Adding TXT value: O-3JOD4zIcWWazZJLb91zML1xOTp89QNfcITi1lzuGk for domain: _acme-challenge.YOURDOMAIN.COM
[Thu Feb 13 01:13:50 PM KST 2025] Adding record
[Thu Feb 13 01:13:50 PM KST 2025] Added, OK
[Thu Feb 13 01:13:50 PM KST 2025] The TXT record has been successfully added.
[Thu Feb 13 01:13:50 PM KST 2025] Adding TXT value: BmtsJK9rl7B_IagZ9iA0eta8ZdkvGBwWIYCESPjaCM0 for domain: _acme-challenge.YOURDOMAIN.COM
[Thu Feb 13 01:13:52 PM KST 2025] Adding record
[Thu Feb 13 01:13:52 PM KST 2025] Added, OK
[Thu Feb 13 01:13:52 PM KST 2025] The TXT record has been successfully added.
[Thu Feb 13 01:13:52 PM KST 2025] Let's check each DNS record now. Sleeping for 20 seconds first.
dateno1 02-13
Ȥ½Ã 80/443Æ÷Æ® ¾²°í ÀÖ³ª¿ä?

±âº»°ªÀÌ DNS°¡ ¾Æ´Ï¶ó ³»Àå À¥¼­¹öÀϲ«µ¥¿ä?

Àû¾îµµ Àú 2°³Áß Çϳª´Â ¹Ì»ç¿ëÀÌ¾ß ÇÕ´Ï´Ù

À¥¼­¹ö ÄÑÁ®ÀÖÀ¸¸é ²ô°í³ª¼­ °»½ÅÈÄ ÄÑ¾ß ÇÕ´Ï´Ù


NAS
Á¦¸ñPage 1/307
2014-05   5135121   Á¤ÀºÁØ1
2015-12   1670067   ¹é¸Þ°¡
02-19   161   langrisser
02-14   303   ÇϾç±î¸Á
02-13   192   ÁÖ¹Ù½º
02-13   194   õÀÚ¹«½Ä
02-12   295   ¾Æ¸§´ÙÀ½ÆÄÆÄ
02-11   271   È­Á¤Å¥»ï
02-05   311   ¹«¿ì¿ì
01-31   740   À̼ø½Å
01-27   543   »õº®ÇüÈÞ¸Õ
01-24   664   ±³±³±³
01-18   562   ¾Æ¸§´ÙÀ½ÆÄÆÄ
01-17   807   °­Áø¼®
01-16   447   °û¹ÎÁØ
01-16   410   ÃÖÁø
01-11   675   NAS°íÀå³µ´Ù¡¦
01-08   1224   ȸ»ó2
01-02   697   ´ö¼ö¸®
12-30   848   ½Å¿ì¼·
12-27   885   ÃÊÄÚ¼ÛÀÌ
12-25   950   ¸®¾Æ·¹³×Æ®